Hexpm Hex
2 CVEs affecting Hexpm Hex. Latest disclosed: 2026-04-30. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-32148 | Medium | 5.9 | 2026-04-30 | Insufficient Verification of Data Authenticity vulnerability in hexpm hex (Hex.RemoteConverger module) allows dependency integrity bypass via unverified lockfi… |
CVE-2026-21619 | | 2026-02-27 | Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hex_core (hex_api modules), hexpm hex (mix_hex_api modules), erlang… |